Corporate supply chains remain an attractive target of foreign intelligence entities. Adversaries seek to exploit less-secure suppliers in a chain and steal information from companies’ networks. The agency recommends that organizations know their suppliers, the equipment and services they provide, and the service providers they use. Ask questions, as it’s important to understand if you’re exposing your infrastructure to a trusted partner who is not secure.

Other threats include spear-phishing emails, social media deception, and foreign travel. Cybersecurity best practices recommend that you:

Never click suspicious links or attachments

Never accept friend requests from strangers

Avoid connecting to public Wi-Fi when home or abroad

While traveling, keep your phone with you at all times

The article cites several recent events to illustrate the growing foreign intelligence threats faces by U.S. companies, including global computer intrusion campaigns targeting intellectual property at businesses and government agencies.